From Input-handling Flaws to Crashables: Security ZLessons From LLM-based Coding Tools

Name: From Input-handling Flaws to Crashables: Security ZLessons From LLM-based Coding Tools
Uploaded: Sep 29, 2025
Duration: 3394 s

OWASP Los Angeles246 subscribers

23 views

Sep 29, 2025

56:34

TOPIC: From Input-handling Flaws to Crashables: Security ZLessons From LLM-based Coding Tools ABSTRACT: Claude Code illustrates how LLM-based coding tools expand the attack surface. Design choices around approvals, parsing, and error handling can turn into security flaws. We present specific findings Kodem uncovered in Claude Code. Both issues highlight how LLM-based coding tools introduce new misconfiguration and input-handling risks. This talk dissects the issues, their broader implications for AI developer tools, and practical mitigations.

Download

1 formats

Video Formats

360pmp478.8 MB

Download

Right-click 'Download' and select 'Save Link As' if the file opens in a new tab.